The domain app.gomtv.com registered by Gretech Corp. was initially registered in September of 2003 through GABIA, INC.. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Seoul, Seoul-T'Ukpyolsi within Korea which resides on the Asia Pacific Network Information Centre network.
Seoul-T'Ukpyolsi, Korea (KR)
Thursday, September 18, 2003
Sunday, September 18, 2016
Tuesday, August 11, 2015
AS4766 KIXS-AS-KR Korea Telecom
Detections (54% detected)
PUP.GRETECH.Installer.Meta (L), PUP.GRETECH.GretechC.Installer.Meta (L), PUP.Gretech.GretechC.Installer.Meta (L), PUP.Gretech.Installer.Meta (L), PUP.Gretech (L)
McAfee Web Gateway
suspected of Trojan.Downloader.gen.h
Trend Micro House Call
The domain app.gomtv.com has been seen to resolve to the following 5 IP addresses.
File downloads found at URLs served by app.gomtv.com.
“곰TV - 함께하는 즐거운 TV . All About Video”
SSL certificate subject:
CN=*.gomtv.com, OU=IT Team, O=Gretech Corp., L=Gangnam-gu, S=SEOUL, C=KR
SSL certificate issuer:
CN=thawte SSL CA - G2, O="thawte, Inc.", C=US